← daniellepel.com
Resume
Career Profile
Daniel R. Lepel
Principal Microsoft Cloud Architect
Microsoft 365 & Azure Platform Architecture
Albany, NY  ·   ·  (518) 618-3700
Summary
NBT2025 – 2026
cb202021 – 2025
FIS2013 – 2021
IBM2013
Atos1999 – 2012
Education & Skills
Principal Microsoft Cloud Architect with 25+ years of enterprise infrastructure experience, including the last several years focused entirely on Microsoft 365, Azure, and Entra ID platform architecture. Built and operated Microsoft cloud environments at MSP scale, up to 25 tenants simultaneously, with no technical oversight above me. Before cloud, I ran Windows server infrastructure for MetLife at 64,000-user global scale.
My work sits at the intersection of identity, security, endpoint, and cloud platform design. The full picture of how I approach that is in the ALIGN Process document and the Cloud Architecture Operating Principles.
Core Competencies
Microsoft 365 & Azure Architecture
Tenant architecture, Azure landing zones, hybrid and cloud-first design, M365 E5 platform adoption
Identity, Security & Zero Trust
Entra ID, Conditional Access, Privileged Identity Management, Microsoft Defender XDR, endpoint security
Endpoint & Workplace Engineering
Microsoft Intune, Autopilot, Windows Hello for Business, modern device lifecycle management
Automation & Operational Reliability
PowerShell 7, Microsoft Graph API, Azure Automation, reporting, and platform health automation
Governance & Compliance
Microsoft Purview, DLP, sensitivity labels, retention policies, eDiscovery, Azure Policy, regulatory compliance frameworks
Hybrid Infrastructure & Virtualization
Windows Server, Active Directory, Group Policy, Hyper-V, VMware ESX, Scale Computing HC3, Azure Arc, hybrid identity, and on-premises to cloud migration
Career at a Glance
02/2025 – 02/2026
Principal Microsoft Cloud Architect
National Business Technologies
03/2021 – 01/2025
Senior Infrastructure Engineer
cb20 (MSP) (assigned to Latham Pool Products)
05/2013 – 01/2021
Senior Systems Analyst
Fidelity Information Systems
01/2013 – 03/2013
Infrastructure Analyst
IBM/Collabera (NYS Data Center Consolidation)
11/1999 – 08/2012
Distributed Services Lead
Atos/Siemens IT Services (assigned to MetLife)
Principal Microsoft Cloud Architect
National Business Technologies
February 2025 – February 2026
Regional MSP delivering managed IT, cloud, and security services — Albany, NY
Responsibilities: Architectural owner for Microsoft 365, Azure, and Entra ID strategy across internal operations and ~25 managed customer tenants. Senior technical authority for identity, endpoint, and security architecture decisions.
What I Did
  • Owned Microsoft 365 and Azure platform architecture across internal operations and managed customer environments, establishing standards for identity, security, endpoint management, and cloud services
  • Designed and governed multi-tenant Microsoft architectures spanning CSP, Internal Use, and customer tenants, maintaining consistency, security, and operational clarity at scale across roughly 25 environments
  • Led modernization initiatives migrating legacy platforms to Microsoft 365, including Exchange Online, SharePoint, Teams, and Intune
  • Defined and implemented identity and security architecture using Entra ID, Conditional Access, Privileged Identity Management, and Zero Trust principles
  • Architected and standardized endpoint platforms using Intune, Autopilot, and Windows Hello for Business, cutting device onboarding time by 50% and improving device compliance
  • Consolidated MSP security offerings around Microsoft Defender and Intune, eliminating redundant third-party tooling across 80 endpoints and saving approximately $16,000/year in licensing
  • Built PowerShell and Microsoft Graph automation for platform assessments, reporting, and SharePoint-based data ingestion, creating visibility into tenant health and compliance that did not exist before
  • Acted as senior technical authority during platform transitions, driving architectural changes that reduced escalation volume and improved customer and internal team satisfaction
  • Managed Hyper-V and Scale Computing HC3 hyperconverged infrastructure across client environments, supporting server consolidation and business continuity planning
  • Established change management and documentation standards where none existed, creating SOPs for repeatable platform tasks and building an audit trail for configuration decisions across the MSP portfolio
Platform Focus
Microsoft Entra ID
Conditional Access
Microsoft Defender XDR
Microsoft Intune
Autopilot
Azure
PowerShell 7
Microsoft Graph API
Zero Trust
Senior Infrastructure Engineer
cb20 (MSP)
March 2021 – January 2025
Pool and outdoor living products manufacturer (~700 employees) — Latham, NY
Responsibilities: Sole Microsoft infrastructure resource for Azure, M365, identity, endpoint, and security architecture. Built the Azure environment from the ground up and owned platform operations end to end.
What I Did
  • Replaced Mimecast with native Microsoft 365 E5 email security capabilities, eliminating the vendor cost entirely while improving protection coverage
  • Participated in integration planning for three potential acquisitions; one was completed, a small organization, contributing to planning and coordination work
  • Conducted eDiscovery and legal holds work directly with the Legal Department using Microsoft Purview
  • Built Azure-based data infrastructure for an ERP integration project: Azure Data Lake Storage, Data Factory, and Databricks, in collaboration with a DevOps-driven engineering team
  • Consolidated 25 on-premises VMs down to 3 through Azure infrastructure migration, cutting hosting costs by roughly $79,000/year
  • Rolled out Microsoft 365 E5 features across the organization, including Intune, Purview, and Defender
  • Modernized workstation onboarding and offboarding, reducing deployment time by 50% through Autopilot and white-glove configurations
  • Enhanced security posture through CrowdStrike, Defender, and Azure Arc integration
  • Automated onboarding and offboarding workflows using PowerShell, saving approximately 200 hours/year in combined engineering labor across a high-turnover environment
  • Served as senior escalation resource for complex Azure, Exchange, and Microsoft 365 issues
  • Managed disaster recovery and backup strategy using Veeam and Azure Backup for infrastructure workloads, with Rubrik handling M365 data protection separately, covering defined RTOs and tested recovery procedures
  • Deployed Azure Blob Storage and Azure File Share to replace aging on-premises file infrastructure, reducing storage costs and enabling cloud-accessible file services for distributed teams
  • Created six SOPs covering Intune/Autopilot enrollment, mobile device management, onboarding/offboarding, and Conditional Access travel exceptions, enabling junior technicians to handle these tasks independently
Platform Focus
Microsoft 365 E5
Microsoft Purview
Entra ID
Intune / Autopilot
Azure Data Lake
Azure Data Factory
Databricks
Azure Arc
CrowdStrike
PowerShell
Senior Systems Analyst
Fidelity Information Systems (FIS)
May 2013 – January 2021
Banking and payment technology provider serving financial institutions nationwide
Responsibilities: Supported and maintained Windows Server infrastructure underpinning FIS banking and payment platforms across multiple U.S. data centers.
What I Did
  • Administered Active Directory across multiple domains, including a functional domain upgrade, coordinating the transition while maintaining platform stability for banking operations
  • Redesigned the daily report generation process for bank clients. Replaced a fragmented series of scheduled tasks spread across multiple servers with two concurrent jobs that ran toward each other from opposite ends of the client list, completing full coverage faster and more reliably
  • Built an Operations dashboard showing each bank's report status in real time: pending, running, or completed. Gave the team visibility they previously had to chase manually
  • Led Windows Server migrations across banking application environments, coordinating with application teams to maintain platform continuity throughout
  • Supported banking applications and AS/400 connectivity across multiple U.S. data centers, maintaining integration between legacy and Windows-based systems
Platform Focus
Windows Server
Active Directory
Domain Administration
AS/400 Connectivity
CMD Batch Scripting
Operations Automation
Data Center Operations
Contract Consultant
IBM / Collabera
2012 – 2013
New York State Data Center Consolidation project
Short-term contract work including Wintel infrastructure analysis and vendor comparison for a New York State data center consolidation project. Work was analytical and advisory at the CTO decision-making level.
Platform Focus
Windows Server
Data Center Architecture
Vendor Analysis
Migration Planning
Distributed Services Lead
Atos/Siemens IT Services
November 1999 – August 2012
Global IT outsourcing provider — MetLife: Fortune 50 insurance and financial services, 64,000+ users
Responsibilities: Led enterprise messaging and infrastructure operations for a global services organization serving 64,000+ users. Managed teams of 15 and 3 simultaneously with full HR accountability including hiring, performance reviews, and terminations.
What I Did
  • Promoted into senior and lead roles over tenure, serving as Tier 3 messaging and security support lead with responsibility for complex incidents and platform stability
  • Managed large-scale Active Directory and Windows server environments, including hundreds of Wintel servers and 100+ Citrix servers in highly regulated enterprise domains
  • Delivered 24x7 operational support with sustained 98-100% SLA performance, mentoring junior engineers and coordinating cross-team response efforts
  • Managed and provided process improvements for the Security & ID Administration team of 15
  • Led and supported the Tier 3 escalation team for all Messaging and Notes database issues
  • Managed SAN storage infrastructure supporting the MetLife global server estate, including provisioning, capacity planning, and coordination with storage operations teams
  • Administered network infrastructure including VLAN configuration, DNS, DHCP, and load balancer coordination across enterprise data center environments
Platform Focus
Active Directory
Windows Server
Citrix
Enterprise Messaging
24x7 Operations
People Management
Education
Bachelor of Science, Management Systems
Rensselaer Polytechnic Institute (RPI)
1987  ·  Troy, NY
Training & Coursework
  • Management 101 - Siemens
  • Yellow Belt Lean Six Sigma
  • ITIL Foundations v3
Technical Skills
Identity & Security
  • Microsoft Entra ID
  • Conditional Access
  • Privileged Identity Management
  • Microsoft Defender XDR
  • Zero Trust architecture
Endpoint & Devices
  • Microsoft Intune
  • Autopilot
  • Windows Hello for Business
  • Co-management
  • Group Policy migration
  • Device compliance policies
Cloud & Platforms
  • Microsoft Sentinel (deployed & configured)
  • Azure (Arc, Monitor, Bastion, Backup, File Sync)
  • Microsoft 365 & E5 platform
  • Microsoft Purview
  • Veeam
Automation & Infrastructure
  • PowerShell 7 (daily use)
  • Microsoft Graph API
  • Azure Automation
  • Windows Server (2000–2025)
  • Active Directory
  • Group Policy
  • Hyper-V
  • VMware ESX (MetLife/FIS)
  • Scale Computing HC3 (NBT)
Governance & Compliance
  • Microsoft Purview
  • DLP & Sensitivity Labels
  • Retention & eDiscovery
  • Azure Policy
  • Microsoft Secure Score
  • NIST 800-207, HIPAA, SOC 2
Networking & Storage
  • DNS, DHCP, VLAN
  • Site-to-site VPN
  • ExpressRoute
  • Azure Blob / File Share
  • SAN storage (MetLife)
  • Veeam, Azure Backup, Rubrik (M365)